cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1343
Views
0
Helpful
1
Replies

Cisco ACE A5(2.0) - TCP reset after a specific amount of time (5 min) occurs on HTTPs queries

Johann Smith
Level 1
Level 1

Dear all,

We have some 'old' ACE's in our network which are being replaced but they've created hopefully a small problem.

TCP reset after a specific amount of time (5 min) occurs on HTTPs queries.  


Two changes I've made on the ACE is in the 'switch' environment of the ACE;

switch-mode timeout 15 

and secondly on the SSL parameter-map

parameter-map type ssl CLIENT_PARAM
description SSL from ACE to Serverfarm
cipher RSA_EXPORT_WITH_RC4_40_MD5
cipher RSA_EXPORT_WITH_DES40_CBC_SHA
session-cache timeout 3600
queue-delay timeout 1
rehandshake enabled

Are there any other timeouts on the ACE that could disconnect an HTTPs 'stream' after 5 minutes?

Regards,

Johann Smith

johannsmith@gmail.com

1 Reply 1

Aleksey Pan
Cisco Employee
Cisco Employee

Hi Johann,

I see you have posted it almost a week ago. Not sure if you still need a help.

To answer your question, from the data "SSL parameter-map" I don't see anything wrong that could cause the TCP reset every time in 5 min.

But yeah, there is an another timeout for the connection, which can be configured under parameter map as well is "set timeout inactivity" which is related to "idle timeout" when you checking " show connection detail"

By default that value is 3600sec

Another thing, it would probably be better to see what is going on there, take the span-capture and trace it, front-end ( Client-ACE) n and back-end (ACE-server).

I can also help you with analyzing the pcap.

Regards,

Alex

Review Cisco Networking for a $25 gift card